BIND : Configure for Internal Network2023/12/20

// line 8 : add to set ACL entry for your local network
acl internal-network { 10.0.0.0/24; };

// line 20 : specify IP address bind listens
// if listen all, specify [any]
         listen-on       { 10.0.0.30; };

// line 25 : if bind listens on IPv6, comment out and set IPv6 address
// if listen all, specify [any]
//         listen-on-v6    { ::1; };

// line 27 : add follows
// network range you allow to recieve queries from client computers
// set ACL entry you set above
         allow-query     { localhost; internal-network; };
// network range you allow to transfer zone files to client computers
// set secondary DNS servers if they exist
         allow-transfer  { localhost; };
// allow recursion
         recursion yes;

// add to last line
include "/usr/local/etc/namedb/internal-zones.conf";

// create new
// add zones for your network and domain name
zone "srv.world" IN {
        type primary;
        file "/usr/local/etc/namedb/primary/srv.world.lan";
        allow-update { none; };
};
zone "0.0.10.in-addr.arpa" IN {
        type primary;
        file "/usr/local/etc/namedb/primary/0.0.10.db";
        allow-update { none; };
};

// For how to write the section [*.*.*.*.in-addr.arpa], write your network address reversely like follows
// case of 10.0.0.0/24
// network address     ⇒ 10.0.0.0
// network range       ⇒ 10.0.0.0 - 10.0.0.255
// how to write        ⇒ 0.0.10.in-addr.arpa

// case of 192.168.1.0/24
// network address     ⇒ 192.168.1.0
// network range       ⇒ 192.168.1.0 - 192.168.1.255
// how to write        ⇒ 1.168.192.in-addr.arpa